Escargot 缓冲区错误漏洞

Escargot is a lightweight JavaScript engine developed by Samsung for use in resource-constrained embedded devices. Escargot has a buffer overflow vulnerability, which stems from out-of-buffer writes, potentially leading to buffer overflows...

uuid 安全漏洞

uuid is a JavaScript module developed by UUID, which allows for the generation of RFC-compliant UUIDs in JavaScript. Versions of uuid prior to 14.0.0 contained security vulnerabilities. These vulnerabilities occurred due to the use of an external output buffer, and accidental writes could occur...

Improper Validation of Specified Index, Position, or Offset in Input

Overview uuid is a RFC4122 v1, v4, and v5 compliant UUID library. Affected versions of this package are vulnerable to Improper Validation of Specified Index, Position, or Offset in Input due to accepting external output buffers but not rejecting out-of-range writes small buf or large offset. This...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a race condition between cpu buffer writes and swaps, which could result in a warning being triggered...

Use of Uninitialized Variable

Overview Affected versions of this package are vulnerable to Use of Uninitialized Variable via the opjjp2readheader component when reading crafted JPEG images. An attacker can achieve arbitrary heap buffer writes by supplying specially crafted JPEG files. PoC include include static void decodecon...

MediaTek Chip Buffer Error Vulnerability

MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. A security vulnerability exists in the MediaTek chips, which arises from improper validation of inputs to the wlan service module, which may result in out-of-bounds writes...

gif2apng 缓冲区错误漏洞

gif2apng is a simple program that converts animations from GIF to APNG format. gif2apng suffers from a buffer overflow vulnerability that could be exploited by an attacker to write data outside the allocated buffer...

Security update for irssi (moderate)

openSUSE Security Update: Security update for irssi Announcement ID: openSUSE-SU-2021:0587-1 Rating: moderate References: 1184848 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for irssi fixes the following issues: irssi...

The vulnerability in the virtual network adapter vmxnet3 of VMware ESXi, VMware Workstation, and VMware Fusion allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the virtual network adapter vmxnet3 in VMware ESXi, VMware Workstation, and VMware Fusion lies in the issue of data writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Mozilla: Backport critical security fixes in Skia

Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including invalid buffer reads and writes during graphic operations. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and Firefox ESR 52.8...